[PM-5717] Fix calling methods on undefined in biometrics service #7559

djsmith85 · 2024-01-15T23:06:42Z

Type of change

- [X] Bug fix
- [ ] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other

Objective

Reading a bug report on GH, I saw some console output where the biometrics service was not being able to call init.

(node:71453) UnhandledPromiseRejectionWarning: TypeError: Cannot read properties of undefined (reading 'init')
    at BiometricsService.<anonymous> (/snap/bitwarden/103/resources/app.asar/main.js:49684:55)
    at Generator.next (<anonymous>)
    at /snap/bitwarden/103/resources/app.asar/main.js:49650:71
    at new Promise (<anonymous>)
    at biometrics_service_awaiter (/snap/bitwarden/103/resources/app.asar/main.js:49646:12)
    at BiometricsService.init (/snap/bitwarden/103/resources/app.asar/main.js:49683:16)
    at Main.<anonymous> (/snap/bitwarden/103/resources/app.asar/main.js:55950:46)
    at Generator.next (<anonymous>)
    at fulfilled (/snap/bitwarden/103/resources/app.asar/main.js:55838:58)
    at emitUnhandledRejectionWarning (node:internal/process/promises:200:15)
    at processPromiseRejections (node:internal/process/promises:296:13)
    at process.processTicksAndRejections (node:internal/process/task_queues:96:32)
(node:71453) TypeError: Cannot read properties of undefined (reading 'init')
    at BiometricsService.<anonymous> (/snap/bitwarden/103/resources/app.asar/main.js:49684:55)
    at Generator.next (<anonymous>)
    at /snap/bitwarden/103/resources/app.asar/main.js:49650:71
    at new Promise (<anonymous>)
    at biometrics_service_awaiter (/snap/bitwarden/103/resources/app.asar/main.js:49646:12)
    at BiometricsService.init (/snap/bitwarden/103/resources/app.asar/main.js:49683:16)
    at Main.<anonymous> (/snap/bitwarden/103/resources/app.asar/main.js:55950:46)
    at Generator.next (<anonymous>)
    at fulfilled (/snap/bitwarden/103/resources/app.asar/main.js:55838:58)

Curious to why this might be happening, I had a look at the biometrics-service. The issue, is that we currently do not support biometrics on Linux and no platform-specific instance exists. So we try calling init on undefined.

Code changes

Fix calling init() on undefined in biometrics.service.ts - d6ca296
Add guard on osSupportsBiometric - e879a35

Before you submit

Please add unit tests where it makes sense to do so (encouraged but not required)
If this change requires a documentation update - notify the documentation team
If this change has particular deployment requirements - notify the DevOps team
Ensure that all UI additions follow WCAG AA requirements

codecov · 2024-01-15T23:10:56Z

Codecov Report

Attention: 6 lines in your changes are missing coverage. Please review.

Comparison is base (c0e1576) 63.42% compared to head (e0a2f15) 61.04%.

❗ Current head e0a2f15 differs from pull request most recent head 5e878c0. Consider uploading reports for the commit 5e878c0 to get more accurate results

Files	Patch %	Lines
...src/platform/main/biometric/biometric.noop.main.ts	14.28%	6 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #7559      +/-   ##
==========================================
- Coverage   63.42%   61.04%   -2.39%     
==========================================
  Files         797      793       -4     
  Lines       22505    23219     +714     
  Branches     4489     4660     +171     
==========================================
- Hits        14274    14174     -100     
- Misses       7400     8188     +788     
- Partials      831      857      +26

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

willmartian

This looks good to me, thanks!

…m-5717/fix-calling-init-on-undefined-in-biometrics-service

djsmith85 · 2024-01-24T09:16:46Z

@willmartian: QA found some more calls that failed, due to not being implemented.

Instead of using guard-clauses on each method, I've decided to create a NoopBiometricsService. This makes it easier to implement and replace once biometrics on Linux are supported. It also future-proof the current scenario in case any public methods are added, they'll need to be implemented on the noop too.

…m-5717/fix-calling-init-on-undefined-in-biometrics-service

bitwarden-bot · 2024-01-24T12:14:39Z

Checkmarx One – Scan Summary & Details – 82863e2b-edc7-4c70-a9e3-fad240751e24

Fixed Issues

Severity	Issue	Source File / Package
	Client_DOM_Code_Injection	/apps/browser/src/autofill/services/collect-autofill-content.service.ts: 1021
	Client_DOM_Stored_XSS	/apps/web/src/connectors/duo-redirect.ts: 23
	Client_DOM_Stored_XSS	/apps/web/src/connectors/sso.ts: 33
	Client_DOM_XSS	/apps/web/src/connectors/common.ts: 2
	Client_DOM_XSS	/apps/web/src/connectors/common.ts: 2
	Client_DOM_XSS	/apps/web/src/connectors/common.ts: 2
	Client_DOM_XSS	/apps/web/src/connectors/sso.ts: 21
	Client_DOM_XSS	/apps/web/src/connectors/sso.ts: 19
	Client_DOM_XSS	/apps/web/src/connectors/sso.ts: 15
	Missing User Instruction	/Dockerfile: 1
	Apt Get Install Pin Version Not Defined	/Dockerfile: 5
	Apt Get Install Pin Version Not Defined	/Dockerfile: 5
	Client_Potential_XSS	/libs/components/src/avatar/avatar.component.ts: 48
	Client_Potential_XSS	/apps/desktop/src/app/components/avatar.component.ts: 41
	Client_Privacy_Violation	/apps/browser/src/auth/popup/account-switching/account.component.ts: 12
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 176
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 175
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 174
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 181
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 262
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 254
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 256
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 255
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 93
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 86
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 88
	Client_Privacy_Violation	/apps/browser/src/autofill/services/collect-autofill-content.service.spec.ts: 87
	Client_Privacy_Violation	/apps/web/src/app/billing/accounts/trial-initiation/billing.component.html: 41
	Client_Privacy_Violation	/apps/web/src/app/billing/accounts/trial-initiation/billing.component.html: 41
	Client_Privacy_Violation	/apps/web/src/app/billing/accounts/trial-initiation/billing.component.html: 41
	Client_Privacy_Violation	/apps/web/src/app/billing/accounts/trial-initiation/billing.component.html: 41
	Client_Privacy_Violation	/apps/web/src/app/billing/accounts/trial-initiation/billing.component.html: 19
	Client_Privacy_Violation	/apps/web/src/app/billing/accounts/trial-initiation/billing.component.html: 19
	Client_Privacy_Violation	/apps/web/src/app/billing/accounts/trial-initiation/billing.component.html: 19
	Client_Privacy_Violation	/apps/web/src/app/billing/accounts/trial-initiation/billing.component.html: 19
	Client_Privacy_Violation	/bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts: 161
	Client_Privacy_Violation	/apps/web/src/app/tools/reports/pages/breach-report.component.html: 14
	Client_Privacy_Violation	/apps/web/src/app/billing/shared/add-credit.component.html: 46
	Client_Privacy_Violation	/apps/desktop/src/vault/app/vault/view.component.html: 534
	Client_Privacy_Violation	/apps/desktop/src/auth/lock.component.html: 32
	Client_Privacy_Violation	/apps/browser/src/background/runtime.background.ts: 311
	Client_Privacy_Violation	/bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts: 161
	Client_Privacy_Violation	/apps/web/src/connectors/webauthn-fallback.ts: 114
	Client_Privacy_Violation	/apps/desktop/native-messaging-test-runner/src/commands/bw-credential-update.ts: 44
	Client_Privacy_Violation	/apps/desktop/native-messaging-test-runner/src/commands/bw-credential-update.ts: 44
	Client_Privacy_Violation	/apps/desktop/native-messaging-test-runner/src/commands/bw-credential-create.ts: 50
	Client_Privacy_Violation	/libs/components/src/color-password/color-password.component.ts: 14
	Client_Privacy_Violation	/libs/components/src/color-password/color-password.component.ts: 14
	Client_Privacy_Violation	/apps/web/src/app/auth/recover-two-factor.component.html: 37
	Client_Privacy_Violation	/apps/web/src/app/auth/lock.component.html: 18
	Client_Privacy_Violation	/apps/desktop/src/vault/app/vault/view.component.html: 60
	Client_Privacy_Violation	/apps/desktop/src/vault/app/vault/view.component.html: 56
	Client_Privacy_Violation	/apps/browser/src/tools/popup/generator/password-generator-history.component.html: 26
	Client_Privacy_Violation	/apps/browser/src/vault/popup/components/vault/password-history.component.html: 18
	Client_Privacy_Violation	/apps/desktop/src/app/tools/password-generator-history.component.html: 15
	Client_Privacy_Violation	/apps/desktop/src/vault/app/vault/password-history.component.html: 12
	Client_Privacy_Violation	/apps/desktop/src/vault/app/vault/view.component.html: 50
	Container Traffic Not Bound To Host Interface	/docker-compose.yml: 7
	Host Namespace is Shared	/docker-compose.yml: 4
	Image Version Not Explicit	/Dockerfile: 1
	Memory Not Limited	/docker-compose.yml: 4
	Missing_HSTS_Header	/apps/cli/src/auth/commands/login.command.ts: 700
	Networks Not Set	/docker-compose.yml: 4
	Privacy_Violation	/apps/desktop/native-messaging-test-runner/src/commands/bw-credential-update.ts: 44
	Privacy_Violation	/apps/desktop/native-messaging-test-runner/src/commands/bw-credential-update.ts: 44
	Security Opt Not Set	/docker-compose.yml: 4
	Unpinned Actions Full Length Commit SHA	/crowdin-pull.yml: 35
	Unpinned Actions Full Length Commit SHA	/build-cli.yml: 408
	Unpinned Actions Full Length Commit SHA	/build-desktop.yml: 1163
	Unpinned Actions Full Length Commit SHA	/version-bump.yml: 122
	Unpinned Actions Full Length Commit SHA	/build-web.yml: 308
	Unpinned Actions Full Length Commit SHA	/deploy-web.yml: 151
	Unpinned Actions Full Length Commit SHA	/deploy-web.yml: 170
	Unpinned Actions Full Length Commit SHA	/crowdin-pull.yml: 41
	Unpinned Actions Full Length Commit SHA	/staged-rollout-desktop.yml: 29
	Unpinned Actions Full Length Commit SHA	/deploy-web.yml: 131
	Unpinned Actions Full Length Commit SHA	/release-cli.yml: 153
	Unpinned Actions Full Length Commit SHA	/build-desktop.yml: 1242
	Unpinned Actions Full Length Commit SHA	/release-web.yml: 147
	Unpinned Actions Full Length Commit SHA	/release-desktop.yml: 70
	Unpinned Actions Full Length Commit SHA	/release-browser.yml: 106
	Unpinned Actions Full Length Commit SHA	/build-web.yml: 202
	Unpinned Actions Full Length Commit SHA	/release-desktop-beta.yml: 51
	Unpinned Actions Full Length Commit SHA	/build-desktop.yml: 299
	Unpinned Actions Full Length Commit SHA	/release-web.yml: 44
	Unpinned Actions Full Length Commit SHA	/release-web.yml: 133
	Unpinned Actions Full Length Commit SHA	/release-desktop-beta.yml: 248
	Unpinned Actions Full Length Commit SHA	/release-cli.yml: 60
	Unpinned Actions Full Length Commit SHA	/release-cli.yml: 81
	Unpinned Actions Full Length Commit SHA	/release-desktop.yml: 188
	Unpinned Actions Full Length Commit SHA	/build-web.yml: 278
	Unpinned Actions Full Length Commit SHA	/brew-bump-desktop.yml: 26
	Unpinned Actions Full Length Commit SHA	/build-browser.yml: 432
	Unpinned Actions Full Length Commit SHA	/brew-bump-cli.yml: 26
	Unpinned Actions Full Length Commit SHA	/version-bump.yml: 44
	Unpinned Actions Full Length Commit SHA	/build-web.yml: 376
	Unpinned Actions Full Length Commit SHA	/release-desktop.yml: 113
	Unpinned Actions Full Length Commit SHA	/release-desktop.yml: 126
	Unpinned Actions Full Length Commit SHA	/release-browser.yml: 44
	Unpinned Actions Full Length Commit SHA	/version-bump.yml: 129
	Unpinned Actions Full Length Commit SHA	/build-browser.yml: 370
	Angular_Usage_of_Unsafe_DOM_Sanitizer	/libs/components/src/icon/icon.component.ts: 18
	Angular_Usage_of_Unsafe_DOM_Sanitizer	/libs/components/src/avatar/avatar.component.ts: 78
	Angular_Usage_of_Unsafe_DOM_Sanitizer	/apps/desktop/src/app/components/avatar.component.ts: 71
	Client_DOM_Open_Redirect	/apps/web/src/connectors/common.ts: 2
	Client_DOM_Open_Redirect	/apps/web/src/connectors/common.ts: 2
	Client_DOM_Open_Redirect	/apps/web/src/connectors/sso.ts: 21
	Client_DOM_Open_Redirect	/apps/web/src/connectors/common.ts: 2
	Client_DOM_Open_Redirect	/apps/web/src/connectors/sso.ts: 19
	Client_DOM_Open_Redirect	/apps/web/src/connectors/common.ts: 2
	Client_DOM_Open_Redirect	/apps/web/src/connectors/sso.ts: 15
	Client_DOM_Open_Redirect	/libs/common/src/auth/iframe-component.ts: 49
	Client_DOM_Open_Redirect	/apps/browser/src/auth/scripts/duo.js: 277
	Client_DOM_Open_Redirect	/apps/desktop/src/auth/scripts/duo.js: 277
	Client_DOM_Open_Redirect	/libs/common/src/auth/webauthn-iframe.ts: 25
	Client_DOM_Open_Redirect	/apps/desktop/src/auth/scripts/duo.js: 277
	Client_DOM_Open_Redirect	/apps/browser/src/auth/scripts/duo.js: 277
	Client_Hardcoded_Domain	/apps/web/src/connectors/captcha.ts: 55
	Client_Password_In_Comment	/apps/web/src/app/auth/key-rotation/user-key-rotation.service.ts: 42
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 341
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 275
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 388
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 417
	Client_Password_In_Comment	/apps/browser/src/autofill/background/overlay.background.ts: 216
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 438
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 225
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 247
	Client_Password_In_Comment	/apps/browser/src/autofill/background/overlay.background.ts: 548
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 456
	Client_Password_In_Comment	/apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 320
	Client_Password_In_Comment	/libs/angular/src/auth/components/sso.component.ts: 212
	Client_Password_In_Comment	/apps/browser/src/autofill/services/autofill.service.ts: 393
	Client_Password_In_Comment	/apps/web/src/app/vault/org-vault/vault.component.ts: 631
	Client_Password_In_Comment	/apps/web/src/app/vault/individual-vault/vault.component.ts: 609
	Client_Password_In_Comment	/libs/angular/src/auth/components/sso.component.ts: 236
	Client_Password_In_Comment	/libs/angular/src/auth/components/two-factor.component.ts: 266
	Client_Password_In_Comment	/libs/exporter/src/vault-export/bitwarden-json-export-types.ts: 40
	Client_Password_In_Comment	/apps/web/src/app/vault/individual-vault/add-edit.component.ts: 121
	Client_Password_In_Comment	/libs/importer/src/importers/onepassword/onepassword-1pux-importer.ts: 336
	Client_Password_In_Comment	/libs/common/src/auth/login-strategies/password-login.strategy.ts: 130
	Client_Password_In_Comment	/libs/angular/src/vault/components/add-edit.component.ts: 250
	Client_Password_In_Comment	/libs/common/src/auth/services/user-verification/user-verification.service.ts: 90
	Client_Password_In_Comment	/libs/importer/src/importers/bitwarden/bitwarden-password-protected-importer.ts: 51
	Client_Password_In_Comment	/apps/web/src/app/auth/settings/emergency-access/attachments/emergency-access-attachments.component.ts: 49
	Client_Password_In_Comment	/libs/importer/spec/test-data/roboform-csv/with-folders.ts: 2
	Client_Password_In_Comment	/libs/importer/spec/test-data/roboform-csv/empty-folders.ts: 2
	Client_Password_In_Comment	/libs/common/src/admin-console/enums/policy-type.enum.ts: 10
	Client_Use_Of_Iframe_Without_Sandbox	/apps/browser/src/autofill/overlay/iframe-content/autofill-overlay-iframe.service.ts: 88
	Client_Use_Of_Iframe_Without_Sandbox	/apps/browser/src/autofill/content/notification-bar.ts: 873
	Client_Use_Of_Iframe_Without_Sandbox	/apps/web/src/connectors/duo.ts: 8
	Client_Weak_Cryptographic_Hash	/libs/common/src/platform/services/web-crypto-function.service.ts: 142

More results are available on AST platform

willmartian

Great refactor, thank you.

…biometrics-service

djsmith85 added 2 commits January 16, 2024 00:02

Fix calling init() on undefined in biometrics.service.ts

d6ca296

Add guard on osSupportsBiometric

e879a35

djsmith85 requested a review from a team as a code owner January 15, 2024 23:06

github-actions bot added the needs-qa Marks a PR as requiring QA approval label Jan 15, 2024

willmartian previously approved these changes Jan 17, 2024

View reviewed changes

djsmith85 added 2 commits January 23, 2024 17:20

Merge branch 'main' of https://github.com/bitwarden/clients into ps/p…

cb85919

…m-5717/fix-calling-init-on-undefined-in-biometrics-service

Create NoopBiometricsService instead of method guards

9997306

djsmith85 dismissed willmartian’s stale review via 9997306 January 24, 2024 09:12

djsmith85 requested a review from willmartian January 24, 2024 09:12

Merge branch 'main' of https://github.com/bitwarden/clients into ps/p…

e0a2f15

…m-5717/fix-calling-init-on-undefined-in-biometrics-service

willmartian approved these changes Jan 24, 2024

View reviewed changes

djsmith85 removed the needs-qa Marks a PR as requiring QA approval label Jan 26, 2024

Merge branch 'main' into ps/pm-5717/fix-calling-init-on-undefined-in-…

5e878c0

…biometrics-service

djsmith85 enabled auto-merge (squash) January 26, 2024 16:15

djsmith85 merged commit 53be494 into main Jan 26, 2024
18 of 19 checks passed

djsmith85 deleted the ps/pm-5717/fix-calling-init-on-undefined-in-biometrics-service branch January 26, 2024 16:15

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[PM-5717] Fix calling methods on undefined in biometrics service #7559

[PM-5717] Fix calling methods on undefined in biometrics service #7559

djsmith85 commented Jan 15, 2024

codecov bot commented Jan 15, 2024 •

edited

Loading

willmartian left a comment

djsmith85 commented Jan 24, 2024

bitwarden-bot commented Jan 24, 2024 •

edited

Loading

willmartian left a comment

[PM-5717] Fix calling methods on undefined in biometrics service #7559

[PM-5717] Fix calling methods on undefined in biometrics service #7559

Conversation

djsmith85 commented Jan 15, 2024

Type of change

Objective

Code changes

Before you submit

codecov bot commented Jan 15, 2024 • edited Loading

Codecov Report

willmartian left a comment

Choose a reason for hiding this comment

djsmith85 commented Jan 24, 2024

bitwarden-bot commented Jan 24, 2024 • edited Loading

Fixed Issues

willmartian left a comment

Choose a reason for hiding this comment

codecov bot commented Jan 15, 2024 •

edited

Loading

bitwarden-bot commented Jan 24, 2024 •

edited

Loading